System Center
United States (English) Sign in
Home 2012 Previous Versions Library Forums Gallery
13 out of 18 rated this helpful - Rate this topic

Creating User Roles in VMM

Updated: January 15, 2013

Applies To: System Center 2012 - Virtual Machine Manager, System Center 2012 SP1 - Virtual Machine Manager

You can create user roles in Virtual Machine Manager (VMM) to define the objects that users can manage and the management operations that users can perform. The following table summarizes the capabilities of each user role in VMM.

User Role Descriptions for VMM

VMM User Role Capabilities

Administrator

Members of the Administrators user role can perform all administrative actions on all objects that VMM manages.

Administrators have sole responsibility for these features of VMM:

  • Only administrators can add stand-alone XenServer hosts and XenServer clusters (known as pools) to VMM management.

  • Only administrators can add a Windows Server Update Services (WSUS) server to VMM to enable updates of the VMM fabric through VMM.

To change the members of the Administrator user role, see How to Add Users to the Administrator User Role.

Fabric Administrator (Delegated Administrator)

Members of the Delegated Administrator user role can perform all administrative tasks within their assigned host groups, clouds, and library servers, except for adding XenServer and adding WSUS servers. Delegated Administrators cannot modify VMM settings, and cannot add or remove members of the Administrators user role.

To create a delegated administrator, see How to Create a Delegated Administrator User Role.

Read-Only Administrator

Read-only administrators can view properties, status, and job status of objects within their assigned host groups, clouds, and library servers, but they cannot modify the objects. Also, the read-only administrator can view Run As accounts that administrators or delegated administrators have specified for that read-only administrator user role.

To create a read-only administrator, see How to Create a Read-Only Administrator User Role.

Tenant Administrator

In VMM in System Center 2012 Service Pack 1 (SP1), you can create Tenant Administrator user roles.

Members of the Tenant Administrator user role can manage self-service users and VM networks. Tenant administrators can create, deploy, and manage their own virtual machines and services by using the VMM console or a web portal. Tenant administrators can also specify which tasks the self-service users can perform on their virtual machines and services. Tenant administrators can place quotas on computing resources and virtual machines.

To create a tenant administrator, see How to Create a Tenant Administrator User Role in VMM in System Center 2012 SP1.

Application Administrator (Self-Service User)

Members of the Self-Service User role can create, deploy, and manage their own virtual machines and services by using the VMM console or a Web portal.

To create a self-service user, see How to Create a Self-Service User Role in VMM.

See Also

-----
For additional resources, see Information and Support for System Center 2012.

Tip: Use this query to find online documentation in the TechNet Library for System Center 2012. For instructions and examples, see Search the System Center 2012 Documentation Library.
-----
Did you find this helpful?
(1500 characters remaining)
© 2013 Microsoft. All rights reserved.